Cisco releases router patches to plug critical flaws

Symantec elevates threat level in wake of Cisco vulnerabilities.

Cisco Systems Inc. on Wednesday released software updates to fix a flaw in its uBR10012 router series. The updates were bundled in a package of 12 security advisories.

The release of the uBR10012 patch prompted Symantec Corp. to elevate its measurement of the global threat to Level 2. Symantec's threat levels range from one to four, with four being the most extreme.

According to the Cisco advisory, its uBR10012 devices automatically enable Simple Network Management Protocol (SNMP) read/write access if a device is configured for linecard redundancy. An attacker who exploits the vulnerability can gain complete control of the router.

"Customers who are using Cisco uBR10012 series devices and have configured the device for linecard redundancy are strongly advised to review the following advisory and install updates or apply the recommended workarounds as soon as possible," Symantec said.

Eleven of the 12 security updates released by Cisco on Wednesday address flaws in Cisco's IOS software; the other deals with vulnerabilities in the Cisco Unified Communications manager.

Dig deeper on Network Firewalls, Routers and Switches

Pro+

Features

Enjoy the benefits of Pro+ membership, learn more and join.

0 comments

Oldest 

Forgot Password?

No problem! Submit your e-mail address below. We'll send you an email containing your password.

Your password has been sent to:

SearchCloudSecurity

SearchNetworking

SearchCIO

SearchConsumerization

SearchEnterpriseDesktop

SearchCloudComputing

ComputerWeekly

Close